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Abstract — Android Operating System works on a permission based model. This permission based model is 
used to protect user's data and system resources. Every Android app we install request certain perm^km 
from the user. Without the user acceptance of the permission, the app cannot be installed in ourid^ic^. 
Asking permission from the user is meant to prevent spreading of the malicious apps among the Ajjehoid 



are granted to the app. 



devices. But there are some hidden meanings of the permissions which need to be understoodjN^^re they 

In this paper, we help the Android user to better understand the Android App PermXSftoi tnodel and their 
hidden meaning, so that the user's can protect their devices from unwanted attackg \roV the cybercriminal 
activities. It is useful to understand what each Android app permission mean anfc^at all information the 
app would be using before granting permission to the app's to access your devi^^*. 

Index Terms — Android permission, Mobile application, Understandjjf^^^ission, smartphone privacy. 

I. Introduction 

The growing sales of Android-based Smartphone's has mack y^WTroid platform as the dominant mobile 
Operating System. The reason for the increasing populaj^t^^ Android operating system is that everyone 
looks for a smartphone that has got technologically adj\nrcd capabilities than just basic communication 
and messaging features. Everyone's want to have todfc^nore than just a basic phone used for messaging 
and calling, they want to do as many things as po^stoi^with their phones. 




8 



The most interesting feature offered by the^fricfcoid OS to the developers is the ability to build their own 
apps which are rich and innovative. Th^JWeaom provided to the user to personalize their smartphone 
devices according to their needs, is^i^jjtractive feature offered by the Android OS. It helps user to 
personalize their smartphones anopra^e them as unique as possible by downloading a variety of apps 
available on the Google Play Sto^ 



This consumer-market ali&v\lrc[ivelopers to easily create applications and users to easily install them. The 
apps available on Google ^lakare both free and paid. Most of the free apps are downloaded from the Google 
Play. These free appsf^^me most dangerous thing to be afraid of. As there could be a motive of the 
developer of po^tiij^^Wpp free of cost on the Play Store. 

This consuma^?Vrt<:et allows developers to easily create applications and users to easily install them. The 
apps availaWApn Google Play are both free and paid. Most of the free apps are downloaded from the Google 
Play. T^^qfree apps are the most dangerous thing to be afraid of. As there could be a motive of the 
deyetojkgjbf posting the app free of cost on the Play Store. 

Eve^r app available on the Google Play requires some permission before they can be installed on our 
devices. The Android security system allows the user to see what all permissions are required by the app but 
doesn't provide choice to the user to select some of the permissions and granting permission to them and 
rejecting rest of the permissions. The Android security system doesn't provide access to modify the 
permissions according to the user of the app. The user has no other option but to permit all the permissions 
of the apps, if he wants that app to be installed to his system. These permissions are certain set of resources 
which is required by the developer to access user information. This user information resource could be 
anything like device IMEI number, user's location, user's contact details, user's messages etc. The user of 
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the app is not even aware of the fact that his personal information is being accessed by someone else [4]. 
Lack of information about the Android permissions let the user to put their secure information on stake. 

An uneducated user is not able to understand the permissions being asked by the developer through the 
app and therefore just simply grants the permissions tasked by the developer through the app. Sometimes 
even an educated person could not make out what harm or what all consequences could be by granting 
permissions to the developers through the app. The consequences and the hidden meaning of the 
permissions asked by the developers needs to be understand before granting them. 



II. Google Policies 



♦ 



Google defines several developer program policies to maintain a positive experience for ep&ffle using 
Google play [3] . These policies are defined to maintain a strict restriction on to the content #lfc^[|ved by the 
apps and the information accessed by the applications. The policies defined by the Google a*|e like rules for 
the developers which they ought to follow in all the circumstances. Following are sora^Ltlte policies listed 
by the Google. ^ 

A. Deceptive Behaviour ^U* 

Content, title, icon, description, or screenshots of any product mft^(^^ contain false or misleading 
information. The product or the apps available on Google play shoi^^igW explicit deceptive behaviour and 
all the content and information it contains should be true. 

B. Personal & Confidential InWrmation 




Unauthorized publishing or disclosure of private and ci)Jtfia*ntial information of peoples is not permitted. 
Google doesn't allow the developers to share the pr^j^lrnd confidential data of the users with someone 
else. 

C.^^^erous Products 

Content that harm, interferes with th^olerations of, or accesses in an unauthorized manner are not 
allowed. 

Example like 

• Transmission of j^^Sk, Trojan horse, worms, defects, malware that may be vulnerable for the 
security or haui*\sflr device, app, or personal data. 

• Apps collecjingyjser's information without their knowledge are prohibited. 



Apps wflhwa/lcious scripts that capture the password entered are prohibited. 

Apps^Ri^kead users to download or install apps from developers which are not registered with 
]K^play are not allowed. 

gle Play app must only use Google Play update mechanism to modify, replace, or update its 
APK binary code. Any other method other than this is not allowed. 

D. System Interference 

Home screen shortcut, browser bookmarks, or icons of apps and their ads could not be added on 
the users device as a service to third parties of for advertising purposes. 

Sending of email, SMS, or other messages on the behalf of the user without providing the user with 
the ability to confirm the content and intended recipient. 




ICIEMS 2014 



ISBN : 978-81-925233-3-0 



www.edlib.asdf.res.in / www.iciems.in 



Proceedings of The Intl. Conf. on Information, Engineering, Management and Security 2014 [ICIEMS 2014] 



18 



Besides all these and many of the other policies defined by the Google, hardly few of them are followed 
properly. Google policies are not being followed by the developers accordingly as they are mentioned. Not 
following the Google policies by the developers is a crime done by them. Abandoning the policies by the 
developers indicates vulnerability to the user's private data and it could lead in security breaching by the 
developer of the app. It indicates about the cybercriminal activities and unwanted attacks which could be 
done to the user's device. 



III. How Android Permission Works 



l^^r^s 



Android app permissions are certain set of resources which are required by the developer to accesl^l 
information. Only limited system resources could be accessed by the app. If the app wan^to ^rcess 
sensitive API's, the apps needs to declare it in the AndroidManifest.XML file [9]. Sensitive^^^^include 
location data, camera function, Bluetooth, phone call, SMS/MMS and network communjrl^gti. Android 
Manifest file is an XML file which is stored in every app's root directory. All the permi^ionsS^equired for an 
Android app need to describe in the Manifest file of the app. whenever a user tries to 
Installer of the Android operation system shows all the permissions declared in th$\ 
either accept or reject them. This is shown in fig 1. 



If an app the App 
ifest file to user to 



The permissions accepted by the user are applied to the app as long ai 
system would not show any notification when sensitive API's are 4& 
attempts to access a protected resource which is not mentioned in 



insralle 



installed in the device and the 
cessed by the app. If an app 



•Sfeiifest file then system w 
security exception and would terminate the app to avoid the app fkfcijfccessing the private data. 



Do you want to install th. » 
application 7 

Allow this applic*u> to: 

• Youckk*:-* 

coj'»*(»^' "0*V- bated) 
k'Mxxv ftne (CPS) tocjUon 

- borage 

nr*>drfy/de*ete US8 storage 
contents 

• Network communication 

• Phone calls 

re*d phone »t*te and ^entity 



Figure 1: The screenshot of permissions asked by the app 



A Sorry! 

The application AndroidKeylnjector (process net. 
pocketmagic.keyinjector) has stopped 
unexpectedly. Please try again. 



Force close 



Fig 2: Security exception thrown by the system. 
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The chances of bypassing the permissions is less but if the permission is defined in the manifest file then 
the developer can easily befool the system and can access the private data of the user [14] . An example of 
this could be misusing the browser to upload information. A developer could develop an app to upload 
stolen data to the desired server by using intent to open a browser. An app can launch any app's content 
using intent. Figure 3 shows intent having function Intent_ACTION_VIEW that shows that the app wants 
to view the Google webpage. The Android OS will launch the browser and the malicious app would upload 
the Device ID to server http://example.com. This example shows how a developer could misuse the 
permissions mentioned in the manifest file and could do malicious activities without even being noticed by 
the user or the system. 



Intent intent, = new Intent (Intent. ACTICNJ/IEW, 
Uri. parse ( * htt p : // exaiple . com/ frtovice_id=xxx ") 
§.yiSMi.Yi^(i"t»"t); 



Figure 3: Example of misusing app through^T^ot^ 



IV. Harmfull Permissioi 

Certain permissions are asked by the developer through app MT^re they are installed in order to work 
properly in user's device after installation. The apps are denAnd^nt upon the permission users grant them, 
to do what they are supposed to do. Many apps reques*^&l#network access so that they can download 
updates. Some apps ask permission to read user's pho*jj\tare and identity; so calls don't disturb the apps 
from doing what they are doing [10]. Trojanized apgs>Ca > i#alter the permissions to perform malicious actions 
like record user conversations and send device k^^mation like International Mobile Equipment Identity 
(IMEI) number to a command center. 



j/^&i whi 



In 2010, first Android Trojan app was fp^&i which sent text messages to certain numbers. Most of the 
Android apps after that perform #Q^oS^rombination of malicious activities like stealing data i.e. data 
stealers, allowing remote access i.l^flSckdoor apps, accessing fraudulent sites i.e. click-fraud enablers, 
listening to calls and reading pei^ial text messages and contact information i.e. mobile spies, downloading 
other malwares i.e. downloacMwA^jicl gaining root or administrative privileges i.e. rooting enablers [11]. 

The trojanized apps se< ptance of the permissions from the user. Once the permissions are granted 

the Trojan app starts fi#mg attacks. The user not being aware of the outcome; accepts the permissions of 



the malware ap 
perform in rea i 
app. The foL 




^ftere is a lot of difference in what the permissions ask for and what activities do they 
e following list provides information about the permissions asked by the trojanized 
list of permissions also tells what all the permissions ought to do and what are they 



A. Network Communication 



doing in 

<f 

Accepting network communication permission means "it allows an application to create network sockets". 
In real, Network communication is enabled in order to allow apps to access the Internet or Bluetooth- 
enabled devices. This is the Android permission which is mostly abused because Internet access is required 
by the malicious app in order to communicate with their command centers or to download updates. Mobile 
spies and data stealers look for this permission to be granted so that they can steal the information to send 
it to remote users. Mobile spies send the information about the user to command centers or remote users 
over internet. Leaving the device Bluetooth discoverable may allow Android malware to infect it like old 
Symbian OS malware. 
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B. Storage 




The Storage permission allows an application to write to the SD card'. Granting an app to modify or delete 
your Storage Device (SD) card's secure data allows it to read, write and delete anything from the card. In 
real we are providing authorization to the developers to do anything with our data. The data stealers create 
a copy of the stolen data from the SD card and send it to the command center. All our private information, 
photos, audios, videos etc are now accessible to some third person without even our knowledge. What a 
layman understands by this permission is that the developer would just simply make a folder for his app in 
the SD card to store data related to his app but there are much more things in real that he do to the^^rd 
other than this. The malicious app can easily overwrite the existing data on our SD card by this perm* 

C. Phone Calls * 

Phone calls permission allows the app to access the phone features of the deviq^ An^app with this 
permission can determine the phone number of this phone, whether a call is active^^W itie number that 
call is connected to etc.' Data stealers steal the call log through this app and save tijefcj^.TXT file and send 
it to the command center. The .TXT file is sent over the internet. Phone calls are&Qjfavourite target of the 
data stealers because they provide lots of information. Malicious apps can i^SycTyour conversation and 
text messages through this permission. Those users who conduct online^^king^ransactions through their 
device are at greater risk, as credentials given over device or through Dff^^g^b may land in waiting hands of 
cyber criminals and then the credentials could be used by the cyber cJ^lcSls. 



D. Hardware Contr 

Hardware controls permission allows the app to take pictnfl^^nH videos, record audios, change your audio 
settings'. Through this permission the developers can tajVpfttures and videos anytime and can send them 
to the command center or to some third party once )£to^(revice is connected to the internet. The app could 
modify the audio setting and could record audic^wiV>ut even user's knowledge. The pictures and audios 
taken by this app could be used sell to third partieswho are ready to buy data related to the user. 




. Messages 



The messages permission allows flfeJK^g instant messages, writing instant messages, receiving SMS or 
MMS, and editing SMS or MMS^Thmugh this permission the developer could easily sneak into the user 
device and see all the private anypfcrfessional messages of the user. Reading someone's messages could give 



a lot of information abo 
can easily read the mesi 
messages sent by the 





rson. This attack is similar to man in middle attack where the developer 
sent and received by the user and can even edit the message. The instant 
er without user intervention could cost the user from his balance. 

F. System Tools 



The Syste 
sleepin 



'allows the app change network connectivity, change WLAN state, prevent phone from 
er running applications, mount and unmount file Systems for removable storage. It also 
formation about currently running app'. By abusing this permission, the malware infect the 
automatically start at boot, Change Wi-Fi state, change network connectivity, and prevent from 
which allows malicious app to run their malicious services. Example a game app doesn't need to 
start every time our phone boots up so it doesn't need permission to do so. This is a very strong indication 
that the app silently runs malicious service in the background every time the phone boots up. 



G. Personal Information 



The Personal Information 'allows the app to read all of the URL's and bookmarks of the browser and can 
even modify browser history or bookmarks'. Through this permission the cybercriminals can learn about 
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the browsing pattern of the device user. This mined data could be sold by the data stealers to the cyber 
criminals and third parties to post ad according and earn profit. 



H. Services That Cost Money 

Service allow app to call phone without user intervention. The first Android Trojan abused this permission 
by sending text messages, phone calls and storage permissions. Granting this permission allows sending 
text messages to premium numbers costing the user a lot of money for the premium services which he don't 
even used. Through this abused permission, the cybercriminals can pay for certain premium numbafl^n 

So' 



order to turn profit from every text messages it sends from the infected device. 



I. Location 

Location allows seeing user's current location'. The data stealers sought permission toi 
geographically present or located. Information like this can be used to do crimes likj 
useful when dishing out region-specific spam or malware. 




e wj^ere the user is 
kmg. This may be 



Most of the Android malware sought at least three permissions that are quil^Snusual for their intended 
use. These are: 

• Full access to internet i.e. Network communication. i^^^ 
Authority to send text messages i.e. Services that cost moneL^ 



• Access to online accounts. 

When installing app this is a good indicator of legitimacy^ 
the app and granting them, all the users should think 



lqngK. 

0* 



j:e giving a green signal to the permissions of 



V. Preven^jW^ to be Taken 

Android gives us freedom to install any apoAaVwe want but the responsibility of keeping the device safe 
from malware attacks lies in our own hajw^eVtain measures should be taken to prevent the device from 
the malicious app [13]. These are: ^ £ yj) 



^^hc 



All the information of ao^pp should be read before downloading and installing it. The information 
should be gathered abAuyttie creator of the app and reading what other users have to say about 
this app. Readinj^lferaviews about the help us know the pros and cons of the app. App's store 
rating should al»\| checked. Lot of trojanized app lure users to download them but the users 
should remai^TS^T Example Fig 4 and Fig 5 show real Angry Bird app and malicious Angry Bird 
app on An|H^ieMvlarket respectively [1] . 

Use ofjroBilr security software that protects not only the user's device but also his data should be 
enccu^ag^a. The software's can identify and stop the malwares even before they reach users device. 




< Market 


Angry Mlrrts 




LvJ ..... 













Figure 4: The real Android Market page for Angry Bird app 
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Figure 5: The malicious Angry Bird app in the Android Market 



The permission an app seeks should be carefully read and understand. Trojaij 
seek more permissions than they actually need in order to do work, 
permission by a legitimate app can put user's device and data in great dang&_ 
media player seeks permission to send text messages then it's an indicatd&kat this app might be a 
malware. The user needs to think before accepting its terms of agreern^^^ 



^cr^pp happens to 
\ng for too many 
Kample if an app of 



VI. Conclusion 



Android market consists of billions of apps. These apps seek certaii^a^nissions for the user to grant them 
before they can be installed on the user's device. This permissi<^^pfnting system in Android is known as 
Android Permission model. There are various malicious apyps present in the Android market who take 
advantage of the permission modal and the permissions^fe^rited by the user. There are certain illegal 
activities which the malicious apps perform with the h^JVoFpermission system. The activities which these 
permissions can lead to are unknown to the commo^fX^le. The permission can help the trojanized apps 
to access and steal the private data of the user wirtm^the knowledge of the user. The trojanized apps share 
this users private data with their command cejjtersa&td other third parties. 

This paper deals with Android permissiojj^Kte^m and the illegal activities performed by these permissions. 
This paper shows how each and evory#p|myission of the Android permission system which seems to be so 
right, provide a gate to the data stel^en^to access and steal user's data. Certain preventions must be taken 

j£ malicious apps. An app seeking too many permission than it actually 
^r's device in great danger. 
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